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Amendments to the Claims 

This listing of claims will replace all prior versions, and listings, of the claims: 

1 . (Previously presented) A system for establishing a secure execution environment 
for a software process executed by a program operating on a computer, comprising: 

a software process operating on a computer, said software process including a 
plurality of attributes; 

an operating system kernel in communication with said software process and in 
communication with an executable file to be accessed by said software process; and 

a system call trap associated with said operating system kernel, said system call 
trap configured to modify the plurality of attributes for the software process in said 
operating system kernel based on an executable environment attribute stored in 
association with said executable file, such that when said executable file is executed, a 
new software process attribute is set as a function of the executable environment 
attribute. 

2. (Previously presented) The system of claim 1 , wherein said system call 
trap further comprises: 

a process attribute extension; and 

an access token extension associated with said process attribute extension, said 
access token extension including said executable environment attribute. 

3. (Previously presented) The system of claim 1, wherein said executable 
environment attribute is contained in a database associated with said executable file. 

4. (Previously presented) The system of claiml, wherein said executable 
environment attribute is chosen from the group consisting of user ID, group IDs and 
privileges. 
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5. (Previously presented) The system of claim 1 , wherein said execution 
environment attribute isolates said software process from any other software process 
operating on said computer* 

6. (Original) The system of claim 1 , wherein said software process is a web 
server process. 

7. (Original) The system of claim l t wherein said software process is a file 
transfer process. 

8. (Original) Hie system of claim 1 , wherein said software process is a mail 
server process. 

9. (Previously presented) The system of claim 1 , wherein said executable 
environment attribute is associated to said software process upon execution of said 
software process. 

1 0. (Previously presented) The system of claim 1 , wherein said executable 
environment attribute replaces any existing attributes associated with said software 
process. 

11. (Previously presented) A method for establishing a secure execution 
environment for a software process executed by a program operating on a computer, die 
method comprising: 

operating a software process on a computer, said software process including a 
plurality of attributes; 

executing an operating system kernel in communication with said software 
process, said operating system kernel in communication with an executable file to be 
accessed by said software process; and 

modifying the plurality of attributes for the software process based on an 
executable environment attribute stared in association with the executable file, such that 

3 



PAGE 5f13 1 RCVD AT 10/13/2085 1 :07:44 PM [Eastern Daylight Time] 1 SVR:USPTO-EFXRF-6/24 * DfflS:2738300 1 CSID:281 514 8332 1 DURATION (mnws]:03-M 



Oct 13 2005 12:11PM HP IP GROUP FAX 281-514-8332 p. 6 

Application No.: 09/517^66 
Response to OA of 08/2/05 

when said executable file is executed, a new software process attribute is set as a function 
of the executable environment attribute. 

12. (Previously presented) The method of claim 1 1, father comprising: 
executing a process attribute extension; and 

executing an access token extension associated with said process attribute 
extension, said access token extension including the executable environment attribute. 

13. (Previously presented) The method of claim 1 1> wherein die executable 
environment attribute is contained in a database associated with said executable file. 

14. (Previously presented) The method of claim 1 1, wherein .said the 
executable environment attribute is chosen from the group consisting of user ID, group 
IDs and privileges. 

15. (Previously presented) The method of claim 1 1 , wherein said execution 
environment attribute isolates said software process from any other software process 
operating on said computer. 

16. (Original) The method of claim 11, wherein said software process is a 
web server process, 

17. (Original) The method of claim 11, wherein said software process is a file 
transfer process. 

1 8. (Original) The method of claim 1 1 , wherein said software jrfocess is a 
mail server process. 

1 9. (Previously presented) The method of claim 1 1 , wherein the executable 
environment attribute is associated to said software process upon execution of said 
software process. 
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20. (Previously presented) The method of claim 1 1 , wherein the executable 
environment attribute replaced any existing attributes associated with said software 
process* 

21. (Currently amended) A computer readable medium havi ng instructions 
for causing a compute to execute a method, comprising! a wrnomm fnr mrtnhlinhitip n 
s e cur e e x e cution environment for a ooftwqre prooeaQ oxooutod by a program operating-eft 
o compute^ the program inoluding logio fort 

operating a software process on a computer, said software process including a 
plurality of attributes; 

executing an operating system kernel in communication with said software 
process, said operating system kernel in communication with an executable file to be 
accessed by said software process; and 

modifying the plurality of attributes for the software process based on an 
executable environment attribute stored in association with the executable file, such that 
when said executable file is executed, a new software process attribute is set as a function 
of the executable environment attribute* 

22* (Currently amended) Th e computer readable mediu m program of claim 
21, further comprisin g logio for : 

executing a process attribute extension; and 

executing an access token extension associated with said process attribute 
extension, said access token extension including the executable environment attribute. 

23* (Currently amended) Th e computer readable mediu m pnogimia of claim 
21 9 wherein the executable environment attribute is contained in a database associated 
with said executable file. 
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24. (Currently amended) Th e computer readable mediu m program of claim 
21, wherein said the executable environment attribute is chosen from the group consisting 
of user ID, group IDs and privileges* 

25. (Currently amended) Th e computer readable medju^ progPiim of claim 
21, wherein said execution environment attribute isolates aaid software process from any 
other software process operating on said computer, 

26. (Currently amended) Th e computer readable med^m program of claim 
21, wherein said software process is a web server process. 

27. (Currently amended) Th e computer readable mediu m pf opmni of claim 
21, wherein said software process is a file transfer process. 

28. (Currently amended) Th e computer readable mediur q program of claim 
21, wherein said software process is a mail servo: process. 

29. (Currently amended) Th e computer readable mediun> pffBfgflra of claim 
21, wherein said the executable environment attribute is associated to Baid software 
process upon execution of said software process. 

30. (Currently amended) Th e computer readable mediu m progroa* of claim 
21, wherein the executable environment attribute replaces any existing attributes 
associated with said software process. 

31. (Previously presented) The system of claim l f wherein the system call 
trap is further configured to determine whether the execution environment attribute 
contains an inherit flag. 
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32 . (Previously presented) The system of claim 3 1, wherein the system call 
trap is farther configured to store a current attribute for a current process when the 
execution, environment attribute contains an inherit flag. 

33. (Previously presented) The system of claim 32, whenein the system call 
trap is further configured to: 

determine whether the current attribute for the current process contains the inherit 

flag; 

merge the execution environment attribute with a previously stored attribute if the 
current attribute does not contain die inherit flag; and 

merge the execution environment attribute with the current attribute if the current 
attribute does contain the inherit flag. 

34. (Previously presented) The method of claim 1 1, further comprising 
determining whether the execution environment attribute contains an inherit flag. 

35. (Previously presented) The method of claim 34, further comprising 
storing a current attribute for a current process when the execution attribute contains an 
inherit flag. 

36. (Previously presented) Hie method of claim 35, further comprising: 
determining whether the current attribute for die current process contains the 

inherit flag; and 

merging the execution environment attribute with a previously stored attribute if 
the current attribute does not contain the inherit flag. 

37. (Previously presented) The method of claim 35 ? further comprising: 
determining whether the current attribute for the current process contains the 

inherit flag; and 

merging the execution environment attribute with the current attribute if the 
current attribute does contain the inherit flag. 
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38. (Currently amended) The computer readable medium of claim 21 , further 
comprisin g logio for determining whether the execution environment attribute contains an 
inherit flag. 

39. (Currently amended) The computer readable medium of claim 3 8, further 
comprisin g logio fog storing a current attribute for a current process when the execution 
attribute contains an inherit flag. 

40. (Currently amended) The computer readable medium of claim 39, further 
comprising logio for : 

determining whether the current attribute for the current process contains the 
inherit flag; 

merging the execution environment attribute with a previously stored attribute if 
the current attribute does not contain the inherit flag; and 

merging the execution environment attribute with the current attribute if {he 
current attribute does contain the inherit flag. 
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